Alibabacloud Pai Quota Management

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed Alibaba Cloud PAI quota-management helper with high-impact cloud permissions, but its risky actions are purpose-aligned and gated by confirmation workflows.

Install only for operators who should manage Alibaba Cloud PAI quotas. Prefer read-only or resource-scoped RAM policies unless full lifecycle changes are required, and before any detach/delete operation verify the dry-run output and that detach commands include `--option Detach` exactly.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Intent-Code Divergence

Medium

Confidence: 95% confidence
Finding: The detach section is safety-sensitive because it documents `delete-workspace-resource` with `--option Detach`, yet also states the default is `DetachAndDelete`. That mismatch can cause an implementation to omit `--option Detach` or rely on defaults, leading to unintended deletion of workspace resources instead of a non-destructive detach.

Missing User Warnings

Medium

Confidence: 97% confidence
Finding: This is a real safety weakness because the skill mentions a risky default (`DetachAndDelete`) without an explicit user-facing warning in the detach workflow. In a quota/workspace management context, accidental deletion can disrupt access and service configuration, especially if an agent or operator assumes detach is non-destructive.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal